115 matches found
The FCC moves to curb SIM swap attacks
The Federal Communications Commission FCC is going to set new rules to curb the rising threat of SIM swapping, also known as SIMjacking. SIM swapping and the very similar port-out fraud is the unlawful use of someones personal information to steal their phone number and swap or transfer it to...
FCC Proposal Targets SIM Swapping, Port-Out Fraud
The U.S. Federal Communications Commission FCC is asking for feedback on new proposed rules to crack down on SIM swapping and number port-out fraud, increasingly prevalent scams in which identity thieves hijack a targets mobile phone number and use that to wrest control over the victims online...
The Threat That Never Went Away Is Back (with a Vengeance)
What is your recollection of May 2017? Emmanuel Macron won the French election. The Ringling Bros. and Barnum & Bailey Circus gave its final performance after a 146-year run. The U.S. FCC voted to overturn net neutrality rules. And the National Health Service in the United Kingdom was crippled by...
AIs and Fake Comments
This month, the New York state attorney general issued a report on a scheme by "U.S. Companies and Partisans to Hack Democracy." This wasn’t another attempt by Republicans to make it harder for Black people and urban residents to vote. It was a concerted attack on another core element of US...
80% of Net Neutrality Comments to FCC Were Fudged
Broadband providers and a 19-year-old college student were among those who successfully hijacked public comments during a crucial decision-making process in 2017 to overturn net neutrality by flooding the Federal Communications Commission FCC with fraudulent comments indicating their position on...
Who’s Behind Monday’s 14-State 911 Outage?
Emergency 911 systems were down for more than an hour on Monday in towns and cities across 14 U.S. states. The outages led many news outlets to speculate the problem was related to Microsofts Azure web services platform, which also was struggling with a widespread outage at the time. However,...
EulerOS 2.0 SP3 : mutt (EulerOS-SA-2020-2109)
According to the versions of the mutt package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Mutt before 1.14.3 allows an IMAP fcc/postpone man-in-the-middle attack via a PREAUTH response.CVE-2020-14093 - Mutt before 1.14.4 and NeoMutt befo...
NSA Warns Smartphones Leak Location Data
Mobile devices expose location data in more ways than most people know, and turning off services such as Find My Phone, Wi-Fi and Bluetooth can help mitigate tracking, but are no silver bullet that prevents a third party from tracking users. That’s advice shared by U.S. top spy division, the...
FreeBSD : IMAP fcc/postpone machine-in-the-middle attack (5b397852-b1d0-11ea-a11c-4437e6ad11c4)
mutt 1.14.3 updates : CVE-2020-14093 - IMAP fcc/postpone man-in-the-middle attack via a PREAUTH response. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2020 Jacques Vidrine and contributors...
CVE-2020-14093
Mutt before 1.14.3 allows an IMAP fcc/postpone man-in-the-middle attack via a PREAUTH response...
Code injection
Mutt before 1.14.3 allows an IMAP fcc/postpone man-in-the-middle attack via a PREAUTH response...
CVE-2020-14093
Mutt before 1.14.3 allows an IMAP fcc/postpone man-in-the-middle attack via a PREAUTH response...
CVE-2020-14093
CVE-2020-14093 affects Mutt prior to 1.14.3, enabling an IMAP fcc/postpone MITM via a PREAUTH response. The issue is documented across multiple advisories (Debian/Red Hat and vendor notes) and is paired with related TLS/STARTTLS handling problems in the same family (e.g., CVE-2020-14954). The roo...
IMAP fcc/postpone machine-in-the-middle attack
mutt 1.14.3 updates: CVE-2020-14093 - IMAP fcc/postpone man-in-the-middle attack via a PREAUTH response...
publicfiles.fcc.gov Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1175828 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website...
FCC Proposes to Fine Wireless Carriers $200M for Selling Customer Location Data
The U.S. Federal Communications Commission FCC today proposed fines of more than $200 million against the nation's four largest wireless carriers for selling access to their customers' location information without taking adequate precautions to prevent unauthorized access to that data. While the...
This Government-Subsidized Phone Comes With Malware
The Android devices are a part of the FCC's Lifeline Assistance Program, which makes free or subsidized phones available to millions of low-income users...
Lawmakers Prod FCC to Act on SIM Swapping
Crooks have stolen tens of millions of dollars and other valuable commodities from thousands of consumers via "SIM swapping," a particularly invasive form of fraud that involves tricking a target's mobile carrier into transferring someone's wireless service to a device they control. But the U.S...
The FCC's Push to Purge Huawei From US Networks
The rural carriers who rely on Huawei are wary of a costly “rip and replace” effort...
A Bug in Popular Android Phones Gives Hackers Full Control
FCC comment bots, a "bulletproof" hosting takedown, and more of the week's top security news...